xenial-security has 7.0.32-0ubuntu0.16.04.1
php-cli is just a metapackage that pulls in php7.0-cli:
ubuntu@xenial-php:~$ apt-cache show php-cli|grep Depends
Depends: php7.0-cli
php7.0-cli is currently at version 7.0.32-0ubuntu0.16.04.1 in xenial-security:
php7.0-cli:
Installed: (none)
Candidate: 7.0.32-0ubuntu0.16.04.1
Version table:
7.0.32-0ubuntu0.16.04.1 500
500 http://br.archive.ubuntu.com/ubuntu xenial-updates/main amd64
Packages
500 http://br.archive.ubuntu.com/ubuntu xenial-security/main amd64
Packages
7.0.4-7ubuntu2 500
500 http://br.archive.ubuntu.com/ubuntu xenial/main amd64 Packages
Its changelog doesn't specifically mention CVE 2018-17082, but the NEWS
file mentions #76582 and that is the same bug. Furthermore, it's version
7.0.32.
Therefore I believe this is fixed already. I will mark this bug as
invalid, but if you think I made a mistake, please reopen it.
** Changed in: php-defaults (Ubuntu)
Status: New => Invalid
--
You received this bug notification because you are a member of Ubuntu
Server, which is subscribed to php-defaults in Ubuntu.
https://bugs.launchpad.net/bugs/1792953
Title:
Security issue with PHP < 7.0.32 on Xenial
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/php-defaults/+bug/1792953/+subscriptions
--
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
